WILI is a portable embedded Linux based software platform suited to implement highly functional, secure and manageable wired and wireless IP networking devices:
HotSpot access points, access controllers, enterprise access points, fixed 802.11abg wireless network elements, base stations and customer premise equipment (CPE) and high performance, secure point to point or point to multi point wireless bridges.

WILI was originally developed for the Intel XScale (IXP-42x) family. Hardware encryption acceleration is fully exploited on IXP-42x CPU family based devices. WILI's scalable and portable nature allowed it to be ported on other hardware platforms like Atheros SoC AR2312, AR5312 (MIPS) and Kendin KS8695 SoC (ARM9) and Intel IA-32, with an upcoming porting to Broadcom BCM47xx SoC and other popular networking platforms. Please refer to the list of WILI supported hardware.

The embeddable software is able to function on very constrained hardware that has 16 MB of RAM and 4 MB of flash memory. Latter amount of RAM and flash memory is sufficient for a fully functional 802.11abg Access Controller with Virtual Access Points, extended networking and wireless security capabilities. This makes WILI a great platform for a wide range of wireless network equipment: ranging from a simple access point or client device to a high speed access controller for busy HotSpot sites as well as component for secure fixed wireless networks.

WILI incorporates state of the art security functionality such as WEP/WPA/WPA2, dynamic key, 802.1x authenticator and supplicant. Security policy settings can be applied per BSSID or interface basis.

Multiple BSSID, VLAN, tunneling and per interface network policies allow creation of very flexible network structures where the same hardware infrastructure can be used for public access with WEB login and WPA2 protected company network or multiple WISP networks can run on the same hardware. Please refer to the list of WILI functionality.

WILI was designed to address wireless network management problems as well. At the heart of WILI management subsystem is a simple text based configuration file and the RCMS (Remote Configuration Management System) agent, which in pair with an RCMS server creates a structure for fast wireless network deployment and robust administration.

Among other features, RCMS server has automatic provisioning, automatic configuration file and firmware image upload capabilities. RCMS agent can bypass most firewall and NAT protected routers without additional configuration. WILI has common management interfaces such as WEB, command line, SNMP and SYSLOG for troubleshooting. More about RCMS.

Figure 1: WILI Software Architecture

SUPPORTED HARDWARE

ADMtek ADM5120
Compex WP54G/WP54AG

XScale Intel IXP-42x
Gateworks AVILA
Lanready AP1000, FN522, WDR800
Zinwell ZW4400/4200

Atheros SoC
Wistron RDAT-81 (AR5312)

Intel IA-32
PC Engines WRAP.2C

Supported wireless LAN chipsets
Atheros AR21xx, AR51xx
Ralink*

*Future releases

On demand porting:
(minimum order requirement - 2000 licenses, for more info, please contact sales@wilibox.com)

XScale Intel IXP-42x
ADI Engineering Coyote
ADI Engineering Pronghorn
Senao NOP8670

ARM9 Kendin KS8695
PePLink MANGA Plus
PePLink MANGA SBC-WINTI

Atheros SoC
Atheros AP30 (AR5312)
Atheros AP43 (AR2313)
Dell Wireless 4350 Small Network Access Point (AR2313)

FEATURES

Supported Standards
IEEE 802.11a/b/g
IEEE 802.11i
IEEE 802.11d - Country element support
IEEE 802.11e - Enhancements: QoS, including packet bursting
IEEE 802.11h - 5 GHz spectrum, Dynamic Frequency Selection (DCS/DFS) and Transmit Power Control (TPC) for European Union compatibility
IEEE 802.11j - Security and public safety band support

Wireless Functionality
Virtual AP (MBSSID)
Multiple wireless interfaces
Per virtual AP (MBSSID) wireless security settings
Association limitation per Virtual AP (MBSSID)
Automated channel selection
Antenna diversity control
Output power control
Wireless distribution system (WDS)
Open client mode
Secure client mode with WEP, WPA, WPA2 PSK and enterprise (dynamic key) with 802.1x supplicant
WPA2 preauthentication support
Half and quarter rate channels support
FCC 4.9GHz security band support
900MHz unlicensed band radio support

Wireless Security
WPA/WPA2 personal and enterprise (with dynamic key from remote RADIUS server) with TKIP, AES (CCMP)
Secure WDS mode, WDS inter access point traffic is secured by WPA/WPA2 in personal or enterprise modes
Static and dynamic WEP
802.1x with EAP-MD5, EAP-TLS, EAP-PEAP, EAP-TTLS, EAP-SIM, EAP-LEAP
Layer 2 intra access point client isolation
SSID broadcasting suppression
Static wireless Access Control Lists (ACLs), MAC address filtering

Networking
Static and dynamic VLAN tagging, up to 4096 VLAN tags, VLAN pass-through
Bridging with spanning tree protocol (STP) support
Static and dynamic IP routing with Quagga Routing Suite
DHCP server, client, relay
DNS relay/proxy
NTP and internal clock support
802.1x authenticator and supplicant
IP and MAC filtering per interface
Stateful inspection firewall with P2P traffic matching module
IPSec with static keys and dynamic re-keying, hardware acceleration for IXP-42x platform
Multiple GRE tunnels
NAT/NAPT/ IP masquerading per interface and VLAN/Virtual AP (MBSSID)
DiffServ with 802.1p mapping for WMM queues
PPPoE client

Public Access
WEB login redirection (captive portal) with HTTP proxy support and multiple/selective authentication methods PAP/CHAP/MSCHAP/MSCHAPv2)
RADIUS MAC authentication
SMTP redirection
Static and dynamic white and black lists
RADIUS client with support for multiple authentication and accounting RADIUS servers
RADIUS accounting client supports fail over and backup modes
RADIUS authentication client supports fail over mode
Per virtual AP (MBSSID) RADIUS, DHCP and NAT configuration
WISPr RADIUS attributes support with per user dynamic bandwidth management
Static bandwidth control (w/o RADIUS)

Management
WEB management via HTTPS
Multicast device discovery
Command line management via SSH and serial console
Configuration file upload via HTTPS and SFTP
RCMS configuration, firmware management and status reporting agent with NAT/firewall traversal functionality
Subnet or VLAN for management traffic
Management access control list
Administrator authentication via RADIUS or TACACS
SNMP V1/2/3
SNMP traps
Supported MIB's: 802.11, 802.1x, MIBII, RADIUS authentication, RADIUS accounting
Local SYSLOG facility with logging to remote server
Onboard troubleshooting information gathering scripts
Boot time device recovery via ethernet
Dual firmware images and TFTP firmware recovery from boot loader if both firmware images were damaged

Linux kernel 2.6.18 XScale, ARM9, MIPS, IA-32
uClibc
Busybox utility set
Supported file systems: cramfs, SquashFS
Open source development tools GNU compiler collection (GCC), GNU Make, etc.
Automated test environment

WILI POWERED DEVICE SCREENSHOT